LWN.net's Journal
 
 [Most Recent Entries] [Calendar View]

Monday, February 16th, 2015

    Time Event
    4:20p
    deb.haskell.org compromised
    The Haskell.org site is currently reporting that its Debian package
    repository, deb.haskell.org, has been compromised.
    "`deb.haskell.org` was already offline and suspended shortly after
    these traffic changes were detected by the host monitoring system, meaning
    the window for package compromise was very very small. We're continuing to
    investigate the breach and the extent to which it might have
    spread.    "
    5:59p
    Security advisories for Monday

    Debian-LTS has updated e2fsprogs (code execution) and nss (two vulnerabilities).

    Fedora has updated android-tools (F21: code execution), bugzilla (F21; F20: command injection), community-mysql (F20: multiple unspecified vulnerabilities), dbus (F21: denial of service), libvirt (F21: multiple vulnerabilities), moodle (F21: multiple vulnerabilities), mutt (F21; F20: denial of service), ntp (F21; F20: two vulnerabilities), perl-Gtk2 (F21; F20: code execution), pigz (F21; F20: directory traversal), postgresql (F20: multiple vulnerabilities), puppetlabs-stdlib (F21; F20: privilege escalation), roundcubemail (F21; F20: cross-site scripting), rubygem-actionpack (F21: two information leaks), rubygem-sprockets (F21; F20: directory traversal), unzip (F21: multiple vulnerabilities), and virt-who (F21: information leak).

    Gentoo has updated cpio (two vulnerabilities), libpng (memory overwrite), and oracle-jre-bin (multiple vulnerabilities).

    Mageia has updated cups (buffer overflow), krb5 (multiple vulnerabilities), and rsync (denial of service).

    SUSE has updated krb5 (SLE12; SLE12: multiple vulnerabilities) and ntp (SLES11 SP2: multiple vulnerabilities).

    10:20p
    Wayland 1.7.0
    Bryce Harrington has announced
    the release     of Wayland 1.7.0. "The Wayland protocol may be
    considered "done" but that doesn't mean
    there's not work to be done. This release focused on major improvements
    to Wayland's documentation, minor improvements to the testsuite, and
    some scattered bugfixes to the code itself.    "

    << Previous Day 2015/02/16
    [Calendar]     		Next Day >>

LWN.net   About LJ.Rossia.org